CVE-2017-12761

Name of the Vulnerable Software and Affected Versions WebFile Explorer version 1.0

Description The issue allows for Arbitrary File Download remotely. It is related to a SQL Injection vulnerability. The component download.php is affected, specifically the variable $file = $ GET['id']. The attack vector is through the endpoint "http://speicher.example.com/envato/codecanyon/demo/web-file-explorer/download.php?id=WebExplorer/../config.php".

Recommendations For WebFile Explorer version 1.0, consider restricting access to the download.php component to minimize the risk of exploitation. Avoid using the id variable in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.